Several reports in both American and Israeli media have recently been circulating the claim that Iran is increasingly likely to respond to draconian U.S.-imposed sanctions by conducting “cyberattacks” against the United States. According to this narrative, “Iranian hackers have laid the groundwork to carry out extensive cyberattacks on U.S. and European infrastructure and on private companies,” prompting the U.S. to consider launching a preemptive “counterattack” in response.

Quoting anonymous U.S. government officials, think tanks and “experts,” these articles assert that the sanctions the U.S. re-imposed on Iran this Tuesday are “likely to push that country to intensify state-sponsored cyber-threat activities,” activities that one expert called “the most consequential, costly and aggressive in the history of the internet, more so than Russia.”

However, upon closer examination, it is clear that these warnings of an imminent Iranian cyberattack are dubious at best — aimed at ending the U.S.’ isolation on the issue through dishonest intelligence, while also justifying a U.S. “preemptive counterattack” on Iran’s infrastructure in a bid to further destabilize the nation, in service to the Trump administration’s overall goal of regime change in Iran.

Chatter by whom?

Most of these articles, in introducing the “threat” posed by Iranian state-sponsored hackers, state that they originated with “cybersecurity and intelligence experts.” However, just sentences later, when these experts are quoted they specifically state that no evidence of such a threat even exists.

For instance, an Associated Press story, which begins with the statement that “the United States is bracing for cyberattacks Iran could launch in retaliation for the re-imposition of sanctions,” quotes Priscilla Moriuchi — director of strategic threat development at Recorded Future, a cyber-threat intelligence company — as saying the following just two sentences later:

While we have no specific threats, we have seen an increase in chatter related to Iranian threat activity over the past several weeks.”

In saying so, Moriuchi essentially admits that there is no threat from Iranian hackers, merely stating that there has been a jump in “chatter” related to Iranian threat activity. Notably, the “chatter” is not attributed, meaning that this increase could be a result of U.S. or Israeli intelligence hyping the possibility of a threat, not necessarily Iranians or their allies threatening a cyberattack.'